FS#53518 : [gwenhywfar] Update to 4.17.0 breaks signature checking of aqbanking

Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!

FS#53518 - [gwenhywfar] Update to 4.17.0 breaks signature checking of aqbanking

Attached to Project: Community Packages
Opened by Stephan Windmüller (windy) - Saturday, 01 April 2017, 10:50 GMT
Last edited by Sergej Pupykin (sergej) - Tuesday, 31 October 2017, 17:11 GMT

Task Type	Bug Report
Category	Packages
Status	Closed
Assigned To	Sergej Pupykin (sergej)
Architecture	All
Severity	Medium
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	1 Simon Kohlmeyer (voyd) (2017-08-15)
Private	No

Details

Description:

With the current update 4.17.0 of gwenhywfar I get this output:

$ LANG=C aqhbci-tool4 getcert -b 67230000
[...]
TLS: SSL-Ciphers negotiated: TLS1.2:ECDHE-RSA-AES-256-GCM:AEAD
Signer not found
Certificate is not trusted
===== Certificate Received =====
The following certificate has been received:
Name : hbci11.fiducia.de
Organisation: Fiducia & GAD IT AG
Department : Produktion
Country : DE
City : Karlsruhe
State : Baden-Wuerttemberg
Valid after : 2016/05/04 02:00:00
Valid until : 2017/08/04 01:59:59
Hash : D8:BB:AC:23:C6:CC:21:8A:DE:79:20:E2:0A:04:07:24
Status : Signer not found; Certificate is not trusted

Downgrading to 4.15.3 solves this issue:

$ LANG=C aqhbci-tool4 getcert -b 67230000
[...]
TLS: SSL-Ciphers negotiated: TLS1.2:ECDHE-RSA-AES-256-GCM:AEAD
===== Certificate Received =====
The following certificate has been received:
Name : hbci11.fiducia.de
Organisation: Fiducia & GAD IT AG
Department : Produktion
Country : DE
City : Karlsruhe
State : Baden-Wuerttemberg
Valid after : 2016/05/04 02:00:00
Valid until : 2017/08/04 01:59:59
Hash : D8:BB:AC:23:C6:CC:21:8A:DE:79:20:E2:0A:04:07:24
Status : The certificate is valid

This task depends upon

Closed by Sergej Pupykin (sergej)
Tuesday, 31 October 2017, 17:11 GMT
Reason for closing: Fixed

Comments (2)
Related Tasks (0/0)

Comment by Stephan Windmüller (windy) - Saturday, 01 July 2017, 21:44 GMT

This issue has already been reported upstream, so this task may be closed.

Comment by Stephan Windmüller (windy) - Wednesday, 26 July 2017, 14:42 GMT

On the upstream mailinglist a solution is proposed: Rebuild the package with --enable-system-certs

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

Community Packages

FS#53518 - [gwenhywfar] Update to 4.17.0 breaks signature checking of aqbanking

Details

Loading...